Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UA5WM9Luvd81jsocJdRVDz1zf84.roa
File: UA5WM9Luvd81jsocJdRVDz1zf84.roa (raw, json)
Hash identifier: y+tJg8yKXL4o8A/wHZuXzLWuSz3gsC2SgZNiDl6TRdI=
Subject key identifier: 50:0E:56:33:D2:EE:BD:DF:35:8E:CA:1C:25:D4:55:0F:3D:73:7F:CE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219E5A1D5125CE7100B00C30A786D22
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UA5WM9Luvd81jsocJdRVDz1zf84.roa
Signing time: Thu 08 Dec 2022 14:18:14 +0000
ROA not before: Thu 08 Dec 2022 14:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31213
IP address blocks: 195.16.96.0/19 maxlen: 24
85.26.128.0/20 maxlen: 20
193.201.228.0/22 maxlen: 24
85.26.208.0/22 maxlen: 22
85.26.212.0/22 maxlen: 22
109.188.128.0/17 maxlen: 17
85.26.216.0/22 maxlen: 22
85.26.220.0/22 maxlen: 22
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
188.170.80.0/21 maxlen: 21
78.25.120.0/22 maxlen: 22
188.170.92.0/22 maxlen: 22
212.69.96.0/19 maxlen: 24
37.28.160.0/21 maxlen: 21
185.210.140.0/22 maxlen: 24
37.28.168.0/21 maxlen: 21
212.119.160.0/19 maxlen: 24
78.25.96.0/21 maxlen: 21
78.25.104.0/22 maxlen: 22
188.170.68.0/24 maxlen: 24
188.170.65.0/24 maxlen: 24
188.170.66.0/24 maxlen: 24
188.170.67.0/24 maxlen: 24
78.25.108.0/22 maxlen: 22
188.170.72.0/21 maxlen: 21
94.25.228.0/23 maxlen: 23
94.25.232.0/21 maxlen: 21
37.29.71.0/24 maxlen: 24
37.29.68.0/23 maxlen: 23
37.29.70.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.74.0/24 maxlen: 24
128.204.75.0/24 maxlen: 24
94.25.208.0/22 maxlen: 22
37.29.48.0/21 maxlen: 21
37.29.56.0/21 maxlen: 21
94.25.216.0/21 maxlen: 21
94.25.224.0/21 maxlen: 21
37.29.64.0/22 maxlen: 22
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
85.26.248.0/22 maxlen: 22
85.26.252.0/22 maxlen: 22
213.243.64.0/18 maxlen: 24
83.149.0.0/21 maxlen: 21
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:e5:a1:d5:12:5c:e7:10:0b:00:c3:0a:78:6d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=500e5633d2eebddf358eca1c25d4550f3d737fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:87:7a:17:52:25:26:7a:e0:55:4b:5f:3f:e3:
ee:90:d7:e2:09:da:b8:fa:fd:61:b4:70:0c:40:13:
ad:d4:23:1d:fb:82:62:ba:11:f7:e7:fa:42:ce:52:
0d:38:6e:1f:2b:4d:a6:f1:c9:88:ec:c1:36:25:ae:
c9:6f:1f:2d:75:50:ba:6f:63:2f:88:9d:a3:72:a4:
fb:17:b3:ad:ba:dc:7c:eb:09:e3:0e:4a:e9:bf:2e:
4b:72:9d:c3:e3:d6:eb:a6:a1:a2:aa:d5:0d:d1:03:
6b:67:c8:c9:44:41:67:45:a4:e7:11:52:e8:5a:dd:
61:ca:0d:59:46:3d:e5:3e:ac:a5:a2:95:bb:c5:c5:
7e:6e:f3:1c:c7:83:2b:b8:4c:ac:ca:9e:5d:4b:58:
d9:19:3c:24:9d:9f:06:fc:4c:37:ca:aa:2d:dc:16:
61:ee:c5:c0:97:02:9a:30:54:43:29:11:0a:f4:d3:
e5:9d:31:e9:45:41:06:10:e0:9e:bb:9d:c6:ea:f9:
dc:71:fa:a1:8c:41:e2:56:fc:54:91:ea:85:a2:1c:
97:4b:e3:bf:03:f1:50:3a:12:30:da:8a:c6:ba:dd:
c1:c6:77:19:e2:9b:a9:1e:45:7e:6e:e8:05:d7:a7:
f8:d9:d5:49:9c:8d:19:15:8f:04:c0:33:b0:a7:76:
b1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0E:56:33:D2:EE:BD:DF:35:8E:CA:1C:25:D4:55:0F:3D:73:7F:CE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UA5WM9Luvd81jsocJdRVDz1zf84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/20
37.29.48.0-37.29.71.255
78.25.96.0/20
78.25.120.0/22
83.149.0.0/21
85.26.128.0/20
85.26.208.0/20
85.26.248.0/21
94.25.208.0/22
94.25.216.0-94.25.239.255
109.188.128.0/17
128.204.74.0/23
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.65.0-188.170.68.255
188.170.72.0-188.170.87.255
188.170.92.0/22
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
91:d8:eb:47:8c:84:cc:7f:05:9a:3d:a8:e3:2d:cb:87:06:0f:
01:d0:95:4e:4b:e8:2a:6f:1a:13:0a:d1:95:dd:e3:d4:f3:c3:
cc:89:a8:b5:c8:22:a3:e7:2b:f1:43:2e:c8:86:a6:bf:bb:0f:
f3:18:f7:b4:23:35:cd:a6:cd:71:ae:76:34:02:2c:52:20:1b:
59:d1:a0:f4:00:9f:9b:e4:be:55:1d:00:0f:21:89:87:b4:b4:
7a:44:fb:ec:8e:16:10:d8:9a:2f:e8:03:a7:ee:4c:fa:67:a3:
a7:70:3c:81:94:e7:f4:c0:51:b3:8f:66:2f:05:90:fb:8d:d6:
6e:ac:8b:89:95:3f:c9:4c:b7:a2:39:01:aa:87:f5:70:99:18:
ec:05:dd:69:b0:51:ab:f2:88:36:1f:8e:3d:af:4f:de:7b:a8:
23:50:01:aa:32:df:45:a5:a6:78:6c:c1:0c:dc:b5:00:68:2f:
af:a3:49:f1:eb:ec:12:aa:43:9e:5d:a0:bf:6d:33:10:f3:f6:
e2:f6:34:5c:52:72:26:c2:2b:9a:06:7b:e1:ce:6f:72:94:b3:
ee:0d:e2:ac:8a:b4:27:ef:77:b6:7c:61:e9:98:19:95:bf:23:
0e:f7:9f:2b:05:2a:10:78:f7:01:dc:2f:f8:76:31:2f:3c:15:
9a:19:62:4d
-----BEGIN CERTIFICATE-----
MIIF2zCCBMOgAwIBAgISAYTyGeWh1RJc5xALAMMKeG0iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTQxODE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDBlNTYzM2QyZWViZGRmMzU4ZWNhMWMyNWQ0NTUwZjNkNzM3ZmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYd6F1IlJnrgVUtfP+PukNfiCdq4
+v1htHAMQBOt1CMd+4JiuhH35/pCzlINOG4fK02m8cmI7ME2Ja7Jbx8tdVC6b2Mv
iJ2jcqT7F7Otutx86wnjDkrpvy5Lcp3D49brpqGiqtUN0QNrZ8jJREFnRaTnEVLo
Wt1hyg1ZRj3lPqylopW7xcV+bvMcx4MruEysyp5dS1jZGTwknZ8G/Ew3yqot3BZh
7sXAlwKaMFRDKREK9NPlnTHpRUEGEOCeu53G6vnccfqhjEHiVvxUkeqFohyXS+O/
A/FQOhIw2orGut3BxncZ4pupHkV+bugF16f42dVJnI0ZFY8EwDOwp3ax7wIDAQAB
o4IC5zCCAuMwHQYDVR0OBBYEFFAOVjPS7r3fNY7KHCXUVQ89c3/OMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvVUE1V005THV2ZDgxanNvY0pkUlZEejF6Zjg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH8BggrBgEFBQcBBwEB/wSB7DCB6TCB5gQCAAEwgd8DBAQl
HKAwDAMEBCUdMAMEAyUdQAMEBE4ZYAMEAk4ZeAMEA1OVAAMEBFUagAMEBFUa0AME
A1Ua+AMEAl4Z0DAMAwQDXhnYAwQEXhngAwQHbbyAAwQBgMxKAwQCudKMAwQDvF6o
AwMAvKIwDAMEALyqQQMEALyqRDAMAwQDvKpIAwQDvKpQAwQCvKpcAwQCwcnkAwQF
wwWAAwQFwxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF
1HegAwQF1ZqgAwQF1aggAwQG1fNAAwQE2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQCR
2OtHjITMfwWaPajjLcuHBg8B0JVOS+gqbxoTCtGV3ePU88PMiai1yCKj5yvxQy7I
hqa/uw/zGPe0IzXNps1xrnY0AixSIBtZ0aD0AJ+b5L5VHQAPIYmHtLR6RPvsjhYQ
2Jov6AOn7kz6Z6OncDyBlOf0wFGzj2YvBZD7jdZurIuJlT/JTLeiOQGqh/VwmRjs
Bd1psFGr8og2H449r0/ee6gjUAGqMt9FpaZ4bMEM3LUAaC+vo0nx6+wSqkOeXaC/
bTMQ8/bi9jRcUnImwiuaBnvhzm9ylLPuDeKsirQn73e2fGHpmBmVvyMO958rBSoQ
ePcB3C/4djEvPBWaGWJN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org